locked
Crypto.HashPassword length RRS feed

  • Question

  • User-657100335 posted

    Hi all,

    I'm using Crypto.HashPassword and I would just like to confirm if the generated hashed password's length is really fixed to 68? TIA.

    Wednesday, January 28, 2015 12:47 AM

Answers

  • User2008642861 posted

    Hi jed0228,

    Thank you for your post. The password hash is generated with the RFC 2898 algorithm using a 128-bit salt, a 256-bit subkey, and 1000 iterations. The format of the generated hash bytestream is {0x00, salt, subkey}, which is base-64 encoded before it is returned.

    For more information, please refer to the below link.

    https://msdn.microsoft.com/en-us/library/system.web.helpers.crypto.hashpassword(v=vs.111).aspx

    Hope this could be helpful to you.

    Best regards,

    Archer

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Wednesday, January 28, 2015 8:27 PM